Vulnerabilities > Greensql > Greensql > 0.2.2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-09-24 | CVE-2007-5059 | Cross-Site Scripting vulnerability in Greensql 0.2.2 Multiple cross-site scripting (XSS) vulnerabilities in GreenSQL allow remote attackers to inject arbitrary web script or HTML via several vectors, as demonstrated by the (1) uname and (2) pass parameters in a login form, and (3) an unspecified "url value," leading to storage of XSS sequences in the database and display of these sequences in the alert section of the admin panel. | 4.3 |